@aws-sdk/client-secrets-manager 3.180.0 → 3.181.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (31) hide show
  1. package/CHANGELOG.md +12 -0
  2. package/dist-cjs/models/models_0.js +11 -2
  3. package/dist-cjs/protocols/Aws_json1_1.js +28 -22
  4. package/dist-es/models/models_0.js +9 -0
  5. package/dist-es/protocols/Aws_json1_1.js +35 -22
  6. package/dist-types/SecretsManager.d.ts +28 -4
  7. package/dist-types/commands/CancelRotateSecretCommand.d.ts +1 -0
  8. package/dist-types/commands/CreateSecretCommand.d.ts +1 -0
  9. package/dist-types/commands/DeleteResourcePolicyCommand.d.ts +1 -0
  10. package/dist-types/commands/DeleteSecretCommand.d.ts +1 -0
  11. package/dist-types/commands/DescribeSecretCommand.d.ts +1 -0
  12. package/dist-types/commands/GetRandomPasswordCommand.d.ts +1 -0
  13. package/dist-types/commands/GetResourcePolicyCommand.d.ts +1 -0
  14. package/dist-types/commands/GetSecretValueCommand.d.ts +1 -0
  15. package/dist-types/commands/ListSecretVersionIdsCommand.d.ts +1 -0
  16. package/dist-types/commands/ListSecretsCommand.d.ts +1 -0
  17. package/dist-types/commands/PutResourcePolicyCommand.d.ts +1 -0
  18. package/dist-types/commands/PutSecretValueCommand.d.ts +3 -2
  19. package/dist-types/commands/RemoveRegionsFromReplicationCommand.d.ts +1 -0
  20. package/dist-types/commands/ReplicateSecretToRegionsCommand.d.ts +1 -0
  21. package/dist-types/commands/RestoreSecretCommand.d.ts +1 -0
  22. package/dist-types/commands/RotateSecretCommand.d.ts +1 -0
  23. package/dist-types/commands/StopReplicationToReplicaCommand.d.ts +1 -0
  24. package/dist-types/commands/TagResourceCommand.d.ts +1 -0
  25. package/dist-types/commands/UntagResourceCommand.d.ts +1 -0
  26. package/dist-types/commands/UpdateSecretCommand.d.ts +5 -2
  27. package/dist-types/commands/UpdateSecretVersionStageCommand.d.ts +1 -0
  28. package/dist-types/commands/ValidateResourcePolicyCommand.d.ts +1 -0
  29. package/dist-types/models/models_0.d.ts +8 -1
  30. package/dist-types/ts3.4/models/models_0.d.ts +8 -7
  31. package/package.json +3 -3
package/CHANGELOG.md CHANGED
@@ -3,6 +3,18 @@
3
3
  All notable changes to this project will be documented in this file.
4
4
  See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
5
5
 
6
+ # [3.181.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.180.0...v3.181.0) (2022-09-29)
7
+
8
+
9
+ ### Bug Fixes
10
+
11
+ * **clients:** make parseErrorBody async ([#3999](https://github.com/aws/aws-sdk-js-v3/issues/3999)) ([2558c93](https://github.com/aws/aws-sdk-js-v3/commit/2558c93c050357ac6dc47aa0452b15b12ebfd676))
12
+ * **clients:** populate message field when parsing errors ([#3995](https://github.com/aws/aws-sdk-js-v3/issues/3995)) ([02e47f1](https://github.com/aws/aws-sdk-js-v3/commit/02e47f14397ae0a5d2e2883350d038b307fdcdb4))
13
+
14
+
15
+
16
+
17
+
6
18
  # [3.180.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.179.0...v3.180.0) (2022-09-27)
7
19
 
8
20
  **Note:** Version bump only for package @aws-sdk/client-secrets-manager
@@ -1,7 +1,7 @@
1
1
  "use strict";
2
2
  Object.defineProperty(exports, "__esModule", { value: true });
3
- exports.RestoreSecretRequestFilterSensitiveLog = exports.ReplicateSecretToRegionsResponseFilterSensitiveLog = exports.ReplicateSecretToRegionsRequestFilterSensitiveLog = exports.RemoveRegionsFromReplicationResponseFilterSensitiveLog = exports.RemoveRegionsFromReplicationRequestFilterSensitiveLog = exports.PutSecretValueResponseFilterSensitiveLog = exports.PutSecretValueRequestFilterSensitiveLog = exports.PutResourcePolicyResponseFilterSensitiveLog = exports.PutResourcePolicyRequestFilterSensitiveLog = exports.ListSecretVersionIdsResponseFilterSensitiveLog = exports.SecretVersionsListEntryFilterSensitiveLog = exports.ListSecretVersionIdsRequestFilterSensitiveLog = exports.ListSecretsResponseFilterSensitiveLog = exports.SecretListEntryFilterSensitiveLog = exports.ListSecretsRequestFilterSensitiveLog = exports.GetSecretValueResponseFilterSensitiveLog = exports.GetSecretValueRequestFilterSensitiveLog = exports.GetResourcePolicyResponseFilterSensitiveLog = exports.GetResourcePolicyRequestFilterSensitiveLog = exports.GetRandomPasswordResponseFilterSensitiveLog = exports.GetRandomPasswordRequestFilterSensitiveLog = exports.FilterFilterSensitiveLog = exports.DescribeSecretResponseFilterSensitiveLog = exports.RotationRulesTypeFilterSensitiveLog = exports.DescribeSecretRequestFilterSensitiveLog = exports.DeleteSecretResponseFilterSensitiveLog = exports.DeleteSecretRequestFilterSensitiveLog = exports.DeleteResourcePolicyResponseFilterSensitiveLog = exports.DeleteResourcePolicyRequestFilterSensitiveLog = exports.CreateSecretResponseFilterSensitiveLog = exports.ReplicationStatusTypeFilterSensitiveLog = exports.CreateSecretRequestFilterSensitiveLog = exports.TagFilterSensitiveLog = exports.CancelRotateSecretResponseFilterSensitiveLog = exports.CancelRotateSecretRequestFilterSensitiveLog = exports.ReplicaRegionTypeFilterSensitiveLog = exports.PublicPolicyException = exports.SortOrderType = exports.InvalidNextTokenException = exports.ResourceExistsException = exports.PreconditionNotMetException = exports.MalformedPolicyDocumentException = exports.LimitExceededException = exports.EncryptionFailure = exports.DecryptionFailure = exports.StatusType = exports.ResourceNotFoundException = exports.InvalidRequestException = exports.InvalidParameterException = exports.InternalServiceError = void 0;
4
- exports.ValidateResourcePolicyResponseFilterSensitiveLog = exports.ValidationErrorsEntryFilterSensitiveLog = exports.ValidateResourcePolicyRequestFilterSensitiveLog = exports.UpdateSecretVersionStageResponseFilterSensitiveLog = exports.UpdateSecretVersionStageRequestFilterSensitiveLog = exports.UpdateSecretResponseFilterSensitiveLog = exports.UpdateSecretRequestFilterSensitiveLog = exports.UntagResourceRequestFilterSensitiveLog = exports.TagResourceRequestFilterSensitiveLog = exports.StopReplicationToReplicaResponseFilterSensitiveLog = exports.StopReplicationToReplicaRequestFilterSensitiveLog = exports.RotateSecretResponseFilterSensitiveLog = exports.RotateSecretRequestFilterSensitiveLog = exports.RestoreSecretResponseFilterSensitiveLog = void 0;
3
+ exports.ReplicateSecretToRegionsResponseFilterSensitiveLog = exports.ReplicateSecretToRegionsRequestFilterSensitiveLog = exports.RemoveRegionsFromReplicationResponseFilterSensitiveLog = exports.RemoveRegionsFromReplicationRequestFilterSensitiveLog = exports.PutSecretValueResponseFilterSensitiveLog = exports.PutSecretValueRequestFilterSensitiveLog = exports.PutResourcePolicyResponseFilterSensitiveLog = exports.PutResourcePolicyRequestFilterSensitiveLog = exports.ListSecretVersionIdsResponseFilterSensitiveLog = exports.SecretVersionsListEntryFilterSensitiveLog = exports.ListSecretVersionIdsRequestFilterSensitiveLog = exports.ListSecretsResponseFilterSensitiveLog = exports.SecretListEntryFilterSensitiveLog = exports.ListSecretsRequestFilterSensitiveLog = exports.GetSecretValueResponseFilterSensitiveLog = exports.GetSecretValueRequestFilterSensitiveLog = exports.GetResourcePolicyResponseFilterSensitiveLog = exports.GetResourcePolicyRequestFilterSensitiveLog = exports.GetRandomPasswordResponseFilterSensitiveLog = exports.GetRandomPasswordRequestFilterSensitiveLog = exports.FilterFilterSensitiveLog = exports.DescribeSecretResponseFilterSensitiveLog = exports.RotationRulesTypeFilterSensitiveLog = exports.DescribeSecretRequestFilterSensitiveLog = exports.DeleteSecretResponseFilterSensitiveLog = exports.DeleteSecretRequestFilterSensitiveLog = exports.DeleteResourcePolicyResponseFilterSensitiveLog = exports.DeleteResourcePolicyRequestFilterSensitiveLog = exports.CreateSecretResponseFilterSensitiveLog = exports.ReplicationStatusTypeFilterSensitiveLog = exports.CreateSecretRequestFilterSensitiveLog = exports.TagFilterSensitiveLog = exports.CancelRotateSecretResponseFilterSensitiveLog = exports.CancelRotateSecretRequestFilterSensitiveLog = exports.ReplicaRegionTypeFilterSensitiveLog = exports.PublicPolicyException = exports.SortOrderType = exports.InvalidNextTokenException = exports.FilterNameStringType = exports.ResourceExistsException = exports.PreconditionNotMetException = exports.MalformedPolicyDocumentException = exports.LimitExceededException = exports.EncryptionFailure = exports.DecryptionFailure = exports.StatusType = exports.ResourceNotFoundException = exports.InvalidRequestException = exports.InvalidParameterException = exports.InternalServiceError = void 0;
4
+ exports.ValidateResourcePolicyResponseFilterSensitiveLog = exports.ValidationErrorsEntryFilterSensitiveLog = exports.ValidateResourcePolicyRequestFilterSensitiveLog = exports.UpdateSecretVersionStageResponseFilterSensitiveLog = exports.UpdateSecretVersionStageRequestFilterSensitiveLog = exports.UpdateSecretResponseFilterSensitiveLog = exports.UpdateSecretRequestFilterSensitiveLog = exports.UntagResourceRequestFilterSensitiveLog = exports.TagResourceRequestFilterSensitiveLog = exports.StopReplicationToReplicaResponseFilterSensitiveLog = exports.StopReplicationToReplicaRequestFilterSensitiveLog = exports.RotateSecretResponseFilterSensitiveLog = exports.RotateSecretRequestFilterSensitiveLog = exports.RestoreSecretResponseFilterSensitiveLog = exports.RestoreSecretRequestFilterSensitiveLog = void 0;
5
5
  const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const SecretsManagerServiceException_1 = require("./SecretsManagerServiceException");
7
7
  class InternalServiceError extends SecretsManagerServiceException_1.SecretsManagerServiceException {
@@ -150,6 +150,15 @@ class ResourceExistsException extends SecretsManagerServiceException_1.SecretsMa
150
150
  }
151
151
  }
152
152
  exports.ResourceExistsException = ResourceExistsException;
153
+ var FilterNameStringType;
154
+ (function (FilterNameStringType) {
155
+ FilterNameStringType["all"] = "all";
156
+ FilterNameStringType["description"] = "description";
157
+ FilterNameStringType["name"] = "name";
158
+ FilterNameStringType["primary_region"] = "primary-region";
159
+ FilterNameStringType["tag_key"] = "tag-key";
160
+ FilterNameStringType["tag_value"] = "tag-value";
161
+ })(FilterNameStringType = exports.FilterNameStringType || (exports.FilterNameStringType = {}));
153
162
  class InvalidNextTokenException extends SecretsManagerServiceException_1.SecretsManagerServiceException {
154
163
  constructor(opts) {
155
164
  super({
@@ -243,7 +243,7 @@ exports.deserializeAws_json1_1CancelRotateSecretCommand = deserializeAws_json1_1
243
243
  const deserializeAws_json1_1CancelRotateSecretCommandError = async (output, context) => {
244
244
  const parsedOutput = {
245
245
  ...output,
246
- body: await parseBody(output.body, context),
246
+ body: await parseErrorBody(output.body, context),
247
247
  };
248
248
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
249
249
  switch (errorCode) {
@@ -286,7 +286,7 @@ exports.deserializeAws_json1_1CreateSecretCommand = deserializeAws_json1_1Create
286
286
  const deserializeAws_json1_1CreateSecretCommandError = async (output, context) => {
287
287
  const parsedOutput = {
288
288
  ...output,
289
- body: await parseBody(output.body, context),
289
+ body: await parseErrorBody(output.body, context),
290
290
  };
291
291
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
292
292
  switch (errorCode) {
@@ -347,7 +347,7 @@ exports.deserializeAws_json1_1DeleteResourcePolicyCommand = deserializeAws_json1
347
347
  const deserializeAws_json1_1DeleteResourcePolicyCommandError = async (output, context) => {
348
348
  const parsedOutput = {
349
349
  ...output,
350
- body: await parseBody(output.body, context),
350
+ body: await parseErrorBody(output.body, context),
351
351
  };
352
352
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
353
353
  switch (errorCode) {
@@ -390,7 +390,7 @@ exports.deserializeAws_json1_1DeleteSecretCommand = deserializeAws_json1_1Delete
390
390
  const deserializeAws_json1_1DeleteSecretCommandError = async (output, context) => {
391
391
  const parsedOutput = {
392
392
  ...output,
393
- body: await parseBody(output.body, context),
393
+ body: await parseErrorBody(output.body, context),
394
394
  };
395
395
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
396
396
  switch (errorCode) {
@@ -433,7 +433,7 @@ exports.deserializeAws_json1_1DescribeSecretCommand = deserializeAws_json1_1Desc
433
433
  const deserializeAws_json1_1DescribeSecretCommandError = async (output, context) => {
434
434
  const parsedOutput = {
435
435
  ...output,
436
- body: await parseBody(output.body, context),
436
+ body: await parseErrorBody(output.body, context),
437
437
  };
438
438
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
439
439
  switch (errorCode) {
@@ -473,7 +473,7 @@ exports.deserializeAws_json1_1GetRandomPasswordCommand = deserializeAws_json1_1G
473
473
  const deserializeAws_json1_1GetRandomPasswordCommandError = async (output, context) => {
474
474
  const parsedOutput = {
475
475
  ...output,
476
- body: await parseBody(output.body, context),
476
+ body: await parseErrorBody(output.body, context),
477
477
  };
478
478
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
479
479
  switch (errorCode) {
@@ -513,7 +513,7 @@ exports.deserializeAws_json1_1GetResourcePolicyCommand = deserializeAws_json1_1G
513
513
  const deserializeAws_json1_1GetResourcePolicyCommandError = async (output, context) => {
514
514
  const parsedOutput = {
515
515
  ...output,
516
- body: await parseBody(output.body, context),
516
+ body: await parseErrorBody(output.body, context),
517
517
  };
518
518
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
519
519
  switch (errorCode) {
@@ -556,7 +556,7 @@ exports.deserializeAws_json1_1GetSecretValueCommand = deserializeAws_json1_1GetS
556
556
  const deserializeAws_json1_1GetSecretValueCommandError = async (output, context) => {
557
557
  const parsedOutput = {
558
558
  ...output,
559
- body: await parseBody(output.body, context),
559
+ body: await parseErrorBody(output.body, context),
560
560
  };
561
561
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
562
562
  switch (errorCode) {
@@ -602,7 +602,7 @@ exports.deserializeAws_json1_1ListSecretsCommand = deserializeAws_json1_1ListSec
602
602
  const deserializeAws_json1_1ListSecretsCommandError = async (output, context) => {
603
603
  const parsedOutput = {
604
604
  ...output,
605
- body: await parseBody(output.body, context),
605
+ body: await parseErrorBody(output.body, context),
606
606
  };
607
607
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
608
608
  switch (errorCode) {
@@ -642,7 +642,7 @@ exports.deserializeAws_json1_1ListSecretVersionIdsCommand = deserializeAws_json1
642
642
  const deserializeAws_json1_1ListSecretVersionIdsCommandError = async (output, context) => {
643
643
  const parsedOutput = {
644
644
  ...output,
645
- body: await parseBody(output.body, context),
645
+ body: await parseErrorBody(output.body, context),
646
646
  };
647
647
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
648
648
  switch (errorCode) {
@@ -685,7 +685,7 @@ exports.deserializeAws_json1_1PutResourcePolicyCommand = deserializeAws_json1_1P
685
685
  const deserializeAws_json1_1PutResourcePolicyCommandError = async (output, context) => {
686
686
  const parsedOutput = {
687
687
  ...output,
688
- body: await parseBody(output.body, context),
688
+ body: await parseErrorBody(output.body, context),
689
689
  };
690
690
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
691
691
  switch (errorCode) {
@@ -734,7 +734,7 @@ exports.deserializeAws_json1_1PutSecretValueCommand = deserializeAws_json1_1PutS
734
734
  const deserializeAws_json1_1PutSecretValueCommandError = async (output, context) => {
735
735
  const parsedOutput = {
736
736
  ...output,
737
- body: await parseBody(output.body, context),
737
+ body: await parseErrorBody(output.body, context),
738
738
  };
739
739
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
740
740
  switch (errorCode) {
@@ -789,7 +789,7 @@ exports.deserializeAws_json1_1RemoveRegionsFromReplicationCommand = deserializeA
789
789
  const deserializeAws_json1_1RemoveRegionsFromReplicationCommandError = async (output, context) => {
790
790
  const parsedOutput = {
791
791
  ...output,
792
- body: await parseBody(output.body, context),
792
+ body: await parseErrorBody(output.body, context),
793
793
  };
794
794
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
795
795
  switch (errorCode) {
@@ -832,7 +832,7 @@ exports.deserializeAws_json1_1ReplicateSecretToRegionsCommand = deserializeAws_j
832
832
  const deserializeAws_json1_1ReplicateSecretToRegionsCommandError = async (output, context) => {
833
833
  const parsedOutput = {
834
834
  ...output,
835
- body: await parseBody(output.body, context),
835
+ body: await parseErrorBody(output.body, context),
836
836
  };
837
837
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
838
838
  switch (errorCode) {
@@ -875,7 +875,7 @@ exports.deserializeAws_json1_1RestoreSecretCommand = deserializeAws_json1_1Resto
875
875
  const deserializeAws_json1_1RestoreSecretCommandError = async (output, context) => {
876
876
  const parsedOutput = {
877
877
  ...output,
878
- body: await parseBody(output.body, context),
878
+ body: await parseErrorBody(output.body, context),
879
879
  };
880
880
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
881
881
  switch (errorCode) {
@@ -918,7 +918,7 @@ exports.deserializeAws_json1_1RotateSecretCommand = deserializeAws_json1_1Rotate
918
918
  const deserializeAws_json1_1RotateSecretCommandError = async (output, context) => {
919
919
  const parsedOutput = {
920
920
  ...output,
921
- body: await parseBody(output.body, context),
921
+ body: await parseErrorBody(output.body, context),
922
922
  };
923
923
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
924
924
  switch (errorCode) {
@@ -961,7 +961,7 @@ exports.deserializeAws_json1_1StopReplicationToReplicaCommand = deserializeAws_j
961
961
  const deserializeAws_json1_1StopReplicationToReplicaCommandError = async (output, context) => {
962
962
  const parsedOutput = {
963
963
  ...output,
964
- body: await parseBody(output.body, context),
964
+ body: await parseErrorBody(output.body, context),
965
965
  };
966
966
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
967
967
  switch (errorCode) {
@@ -1001,7 +1001,7 @@ exports.deserializeAws_json1_1TagResourceCommand = deserializeAws_json1_1TagReso
1001
1001
  const deserializeAws_json1_1TagResourceCommandError = async (output, context) => {
1002
1002
  const parsedOutput = {
1003
1003
  ...output,
1004
- body: await parseBody(output.body, context),
1004
+ body: await parseErrorBody(output.body, context),
1005
1005
  };
1006
1006
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
1007
1007
  switch (errorCode) {
@@ -1041,7 +1041,7 @@ exports.deserializeAws_json1_1UntagResourceCommand = deserializeAws_json1_1Untag
1041
1041
  const deserializeAws_json1_1UntagResourceCommandError = async (output, context) => {
1042
1042
  const parsedOutput = {
1043
1043
  ...output,
1044
- body: await parseBody(output.body, context),
1044
+ body: await parseErrorBody(output.body, context),
1045
1045
  };
1046
1046
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
1047
1047
  switch (errorCode) {
@@ -1084,7 +1084,7 @@ exports.deserializeAws_json1_1UpdateSecretCommand = deserializeAws_json1_1Update
1084
1084
  const deserializeAws_json1_1UpdateSecretCommandError = async (output, context) => {
1085
1085
  const parsedOutput = {
1086
1086
  ...output,
1087
- body: await parseBody(output.body, context),
1087
+ body: await parseErrorBody(output.body, context),
1088
1088
  };
1089
1089
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
1090
1090
  switch (errorCode) {
@@ -1145,7 +1145,7 @@ exports.deserializeAws_json1_1UpdateSecretVersionStageCommand = deserializeAws_j
1145
1145
  const deserializeAws_json1_1UpdateSecretVersionStageCommandError = async (output, context) => {
1146
1146
  const parsedOutput = {
1147
1147
  ...output,
1148
- body: await parseBody(output.body, context),
1148
+ body: await parseErrorBody(output.body, context),
1149
1149
  };
1150
1150
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
1151
1151
  switch (errorCode) {
@@ -1191,7 +1191,7 @@ exports.deserializeAws_json1_1ValidateResourcePolicyCommand = deserializeAws_jso
1191
1191
  const deserializeAws_json1_1ValidateResourcePolicyCommandError = async (output, context) => {
1192
1192
  const parsedOutput = {
1193
1193
  ...output,
1194
- body: await parseBody(output.body, context),
1194
+ body: await parseErrorBody(output.body, context),
1195
1195
  };
1196
1196
  const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
1197
1197
  switch (errorCode) {
@@ -2023,6 +2023,12 @@ const parseBody = (streamBody, context) => collectBodyString(streamBody, context
2023
2023
  }
2024
2024
  return {};
2025
2025
  });
2026
+ const parseErrorBody = async (errorBody, context) => {
2027
+ var _a;
2028
+ const value = await parseBody(errorBody, context);
2029
+ value.message = (_a = value.message) !== null && _a !== void 0 ? _a : value.Message;
2030
+ return value;
2031
+ };
2026
2032
  const loadRestJsonErrorCode = (output, data) => {
2027
2033
  const findKey = (object, key) => Object.keys(object).find((k) => k.toLowerCase() === key.toLowerCase());
2028
2034
  const sanitizeErrorCode = (rawValue) => {
@@ -137,6 +137,15 @@ var ResourceExistsException = (function (_super) {
137
137
  return ResourceExistsException;
138
138
  }(__BaseException));
139
139
  export { ResourceExistsException };
140
+ export var FilterNameStringType;
141
+ (function (FilterNameStringType) {
142
+ FilterNameStringType["all"] = "all";
143
+ FilterNameStringType["description"] = "description";
144
+ FilterNameStringType["name"] = "name";
145
+ FilterNameStringType["primary_region"] = "primary-region";
146
+ FilterNameStringType["tag_key"] = "tag-key";
147
+ FilterNameStringType["tag_value"] = "tag-value";
148
+ })(FilterNameStringType || (FilterNameStringType = {}));
140
149
  var InvalidNextTokenException = (function (_super) {
141
150
  __extends(InvalidNextTokenException, _super);
142
151
  function InvalidNextTokenException(opts) {
@@ -272,7 +272,7 @@ var deserializeAws_json1_1CancelRotateSecretCommandError = function (output, con
272
272
  case 0:
273
273
  _a = [__assign({}, output)];
274
274
  _c = {};
275
- return [4, parseBody(output.body, context)];
275
+ return [4, parseErrorBody(output.body, context)];
276
276
  case 1:
277
277
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
278
278
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -335,7 +335,7 @@ var deserializeAws_json1_1CreateSecretCommandError = function (output, context)
335
335
  case 0:
336
336
  _a = [__assign({}, output)];
337
337
  _c = {};
338
- return [4, parseBody(output.body, context)];
338
+ return [4, parseErrorBody(output.body, context)];
339
339
  case 1:
340
340
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
341
341
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -422,7 +422,7 @@ var deserializeAws_json1_1DeleteResourcePolicyCommandError = function (output, c
422
422
  case 0:
423
423
  _a = [__assign({}, output)];
424
424
  _c = {};
425
- return [4, parseBody(output.body, context)];
425
+ return [4, parseErrorBody(output.body, context)];
426
426
  case 1:
427
427
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
428
428
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -485,7 +485,7 @@ var deserializeAws_json1_1DeleteSecretCommandError = function (output, context)
485
485
  case 0:
486
486
  _a = [__assign({}, output)];
487
487
  _c = {};
488
- return [4, parseBody(output.body, context)];
488
+ return [4, parseErrorBody(output.body, context)];
489
489
  case 1:
490
490
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
491
491
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -548,7 +548,7 @@ var deserializeAws_json1_1DescribeSecretCommandError = function (output, context
548
548
  case 0:
549
549
  _a = [__assign({}, output)];
550
550
  _c = {};
551
- return [4, parseBody(output.body, context)];
551
+ return [4, parseErrorBody(output.body, context)];
552
552
  case 1:
553
553
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
554
554
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -607,7 +607,7 @@ var deserializeAws_json1_1GetRandomPasswordCommandError = function (output, cont
607
607
  case 0:
608
608
  _a = [__assign({}, output)];
609
609
  _c = {};
610
- return [4, parseBody(output.body, context)];
610
+ return [4, parseErrorBody(output.body, context)];
611
611
  case 1:
612
612
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
613
613
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -666,7 +666,7 @@ var deserializeAws_json1_1GetResourcePolicyCommandError = function (output, cont
666
666
  case 0:
667
667
  _a = [__assign({}, output)];
668
668
  _c = {};
669
- return [4, parseBody(output.body, context)];
669
+ return [4, parseErrorBody(output.body, context)];
670
670
  case 1:
671
671
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
672
672
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -729,7 +729,7 @@ var deserializeAws_json1_1GetSecretValueCommandError = function (output, context
729
729
  case 0:
730
730
  _a = [__assign({}, output)];
731
731
  _c = {};
732
- return [4, parseBody(output.body, context)];
732
+ return [4, parseErrorBody(output.body, context)];
733
733
  case 1:
734
734
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
735
735
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -796,7 +796,7 @@ var deserializeAws_json1_1ListSecretsCommandError = function (output, context) {
796
796
  case 0:
797
797
  _a = [__assign({}, output)];
798
798
  _c = {};
799
- return [4, parseBody(output.body, context)];
799
+ return [4, parseErrorBody(output.body, context)];
800
800
  case 1:
801
801
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
802
802
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -855,7 +855,7 @@ var deserializeAws_json1_1ListSecretVersionIdsCommandError = function (output, c
855
855
  case 0:
856
856
  _a = [__assign({}, output)];
857
857
  _c = {};
858
- return [4, parseBody(output.body, context)];
858
+ return [4, parseErrorBody(output.body, context)];
859
859
  case 1:
860
860
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
861
861
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -918,7 +918,7 @@ var deserializeAws_json1_1PutResourcePolicyCommandError = function (output, cont
918
918
  case 0:
919
919
  _a = [__assign({}, output)];
920
920
  _c = {};
921
- return [4, parseBody(output.body, context)];
921
+ return [4, parseErrorBody(output.body, context)];
922
922
  case 1:
923
923
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
924
924
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -989,7 +989,7 @@ var deserializeAws_json1_1PutSecretValueCommandError = function (output, context
989
989
  case 0:
990
990
  _a = [__assign({}, output)];
991
991
  _c = {};
992
- return [4, parseBody(output.body, context)];
992
+ return [4, parseErrorBody(output.body, context)];
993
993
  case 1:
994
994
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
995
995
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -1068,7 +1068,7 @@ var deserializeAws_json1_1RemoveRegionsFromReplicationCommandError = function (o
1068
1068
  case 0:
1069
1069
  _a = [__assign({}, output)];
1070
1070
  _c = {};
1071
- return [4, parseBody(output.body, context)];
1071
+ return [4, parseErrorBody(output.body, context)];
1072
1072
  case 1:
1073
1073
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
1074
1074
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -1131,7 +1131,7 @@ var deserializeAws_json1_1ReplicateSecretToRegionsCommandError = function (outpu
1131
1131
  case 0:
1132
1132
  _a = [__assign({}, output)];
1133
1133
  _c = {};
1134
- return [4, parseBody(output.body, context)];
1134
+ return [4, parseErrorBody(output.body, context)];
1135
1135
  case 1:
1136
1136
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
1137
1137
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -1194,7 +1194,7 @@ var deserializeAws_json1_1RestoreSecretCommandError = function (output, context)
1194
1194
  case 0:
1195
1195
  _a = [__assign({}, output)];
1196
1196
  _c = {};
1197
- return [4, parseBody(output.body, context)];
1197
+ return [4, parseErrorBody(output.body, context)];
1198
1198
  case 1:
1199
1199
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
1200
1200
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -1257,7 +1257,7 @@ var deserializeAws_json1_1RotateSecretCommandError = function (output, context)
1257
1257
  case 0:
1258
1258
  _a = [__assign({}, output)];
1259
1259
  _c = {};
1260
- return [4, parseBody(output.body, context)];
1260
+ return [4, parseErrorBody(output.body, context)];
1261
1261
  case 1:
1262
1262
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
1263
1263
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -1320,7 +1320,7 @@ var deserializeAws_json1_1StopReplicationToReplicaCommandError = function (outpu
1320
1320
  case 0:
1321
1321
  _a = [__assign({}, output)];
1322
1322
  _c = {};
1323
- return [4, parseBody(output.body, context)];
1323
+ return [4, parseErrorBody(output.body, context)];
1324
1324
  case 1:
1325
1325
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
1326
1326
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -1383,7 +1383,7 @@ var deserializeAws_json1_1TagResourceCommandError = function (output, context) {
1383
1383
  case 0:
1384
1384
  _a = [__assign({}, output)];
1385
1385
  _c = {};
1386
- return [4, parseBody(output.body, context)];
1386
+ return [4, parseErrorBody(output.body, context)];
1387
1387
  case 1:
1388
1388
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
1389
1389
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -1446,7 +1446,7 @@ var deserializeAws_json1_1UntagResourceCommandError = function (output, context)
1446
1446
  case 0:
1447
1447
  _a = [__assign({}, output)];
1448
1448
  _c = {};
1449
- return [4, parseBody(output.body, context)];
1449
+ return [4, parseErrorBody(output.body, context)];
1450
1450
  case 1:
1451
1451
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
1452
1452
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -1509,7 +1509,7 @@ var deserializeAws_json1_1UpdateSecretCommandError = function (output, context)
1509
1509
  case 0:
1510
1510
  _a = [__assign({}, output)];
1511
1511
  _c = {};
1512
- return [4, parseBody(output.body, context)];
1512
+ return [4, parseErrorBody(output.body, context)];
1513
1513
  case 1:
1514
1514
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
1515
1515
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -1596,7 +1596,7 @@ var deserializeAws_json1_1UpdateSecretVersionStageCommandError = function (outpu
1596
1596
  case 0:
1597
1597
  _a = [__assign({}, output)];
1598
1598
  _c = {};
1599
- return [4, parseBody(output.body, context)];
1599
+ return [4, parseErrorBody(output.body, context)];
1600
1600
  case 1:
1601
1601
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
1602
1602
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -1663,7 +1663,7 @@ var deserializeAws_json1_1ValidateResourcePolicyCommandError = function (output,
1663
1663
  case 0:
1664
1664
  _a = [__assign({}, output)];
1665
1665
  _c = {};
1666
- return [4, parseBody(output.body, context)];
1666
+ return [4, parseErrorBody(output.body, context)];
1667
1667
  case 1:
1668
1668
  parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
1669
1669
  errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -2412,6 +2412,19 @@ var parseBody = function (streamBody, context) {
2412
2412
  return {};
2413
2413
  });
2414
2414
  };
2415
+ var parseErrorBody = function (errorBody, context) { return __awaiter(void 0, void 0, void 0, function () {
2416
+ var value;
2417
+ var _a;
2418
+ return __generator(this, function (_b) {
2419
+ switch (_b.label) {
2420
+ case 0: return [4, parseBody(errorBody, context)];
2421
+ case 1:
2422
+ value = _b.sent();
2423
+ value.message = (_a = value.message) !== null && _a !== void 0 ? _a : value.Message;
2424
+ return [2, value];
2425
+ }
2426
+ });
2427
+ }); };
2415
2428
  var loadRestJsonErrorCode = function (output, data) {
2416
2429
  var findKey = function (object, key) { return Object.keys(object).find(function (k) { return k.toLowerCase() === key.toLowerCase(); }); };
2417
2430
  var sanitizeErrorCode = function (rawValue) {
@@ -81,6 +81,7 @@ export declare class SecretsManager extends SecretsManagerClient {
81
81
  * <a>UpdateSecretVersionStage</a> to change staging labels.
82
82
  * For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotate-secrets_how.html">How rotation works</a>.</p>
83
83
  * <p>To turn on automatic rotation again, call <a>RotateSecret</a>.</p>
84
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
84
85
  * <p>
85
86
  * <b>Required permissions: </b>
86
87
  * <code>secretsmanager:CancelRotateSecret</code>.
@@ -116,6 +117,7 @@ export declare class SecretsManager extends SecretsManagerClient {
116
117
  * <p>If the secret is in a different Amazon Web Services account from the credentials calling the API, then
117
118
  * you can't use <code>aws/secretsmanager</code> to encrypt the secret, and you must create
118
119
  * and use a customer managed KMS key. </p>
120
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters except <code>SecretBinary</code> or <code>SecretString</code> because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
119
121
  * <p>
120
122
  * <b>Required permissions: </b>
121
123
  * <code>secretsmanager:CreateSecret</code>. If you
@@ -131,6 +133,7 @@ export declare class SecretsManager extends SecretsManagerClient {
131
133
  /**
132
134
  * <p>Deletes the resource-based permission policy attached to the secret. To attach a policy to
133
135
  * a secret, use <a>PutResourcePolicy</a>.</p>
136
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
134
137
  * <p>
135
138
  * <b>Required permissions: </b>
136
139
  * <code>secretsmanager:DeleteResourcePolicy</code>.
@@ -164,6 +167,7 @@ export declare class SecretsManager extends SecretsManagerClient {
164
167
  * remove the <code>DeletionDate</code> and cancel the deletion of the secret.</p>
165
168
  * <p>When a secret is scheduled for deletion, you cannot retrieve the secret value.
166
169
  * You must first cancel the deletion with <a>RestoreSecret</a> and then you can retrieve the secret.</p>
170
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
167
171
  * <p>
168
172
  * <b>Required permissions: </b>
169
173
  * <code>secretsmanager:DeleteSecret</code>.
@@ -177,6 +181,7 @@ export declare class SecretsManager extends SecretsManagerClient {
177
181
  /**
178
182
  * <p>Retrieves the details of a secret. It does not include the encrypted secret value. Secrets Manager
179
183
  * only returns fields that have a value in the response. </p>
184
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
180
185
  * <p>
181
186
  * <b>Required permissions: </b>
182
187
  * <code>secretsmanager:DescribeSecret</code>.
@@ -191,6 +196,7 @@ export declare class SecretsManager extends SecretsManagerClient {
191
196
  * <p>Generates a random password. We recommend that you specify the
192
197
  * maximum length and include every character type that the system you are generating a password
193
198
  * for can support.</p>
199
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
194
200
  * <p>
195
201
  * <b>Required permissions: </b>
196
202
  * <code>secretsmanager:GetRandomPassword</code>.
@@ -206,6 +212,7 @@ export declare class SecretsManager extends SecretsManagerClient {
206
212
  * secret. For more information about permissions policies attached to a secret, see
207
213
  * <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access_resource-policies.html">Permissions
208
214
  * policies attached to a secret</a>.</p>
215
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
209
216
  * <p>
210
217
  * <b>Required permissions: </b>
211
218
  * <code>secretsmanager:GetResourcePolicy</code>.
@@ -226,6 +233,7 @@ export declare class SecretsManager extends SecretsManagerClient {
226
233
  * <p>To retrieve the previous version of a secret, use <code>VersionStage</code> and specify
227
234
  * AWSPREVIOUS. To revert to the previous version of a secret, call <a href="https://docs.aws.amazon.com/cli/latest/reference/secretsmanager/update-secret-version-stage.html">UpdateSecretVersionStage</a>.</p>
228
235
  *
236
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
229
237
  * <p>
230
238
  * <b>Required permissions: </b>
231
239
  * <code>secretsmanager:GetSecretValue</code>.
@@ -247,6 +255,7 @@ export declare class SecretsManager extends SecretsManagerClient {
247
255
  * <p>To get the secret value from <code>SecretString</code> or <code>SecretBinary</code>,
248
256
  * call <a>GetSecretValue</a>.</p>
249
257
  * <p>For information about finding secrets in the console, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/manage_search-secret.html">Find secrets in Secrets Manager</a>.</p>
258
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
250
259
  * <p>
251
260
  * <b>Required permissions: </b>
252
261
  * <code>secretsmanager:ListSecrets</code>.
@@ -262,6 +271,7 @@ export declare class SecretsManager extends SecretsManagerClient {
262
271
  * of a secret. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/getting-started.html#term_version">
263
272
  * Secrets Manager concepts: Versions</a>.</p>
264
273
  * <p>To list the secrets in the account, use <a>ListSecrets</a>.</p>
274
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
265
275
  * <p>
266
276
  * <b>Required permissions: </b>
267
277
  * <code>secretsmanager:ListSecretVersionIds</code>.
@@ -278,6 +288,7 @@ export declare class SecretsManager extends SecretsManagerClient {
278
288
  * </p>
279
289
  * <p>For information about attaching a policy in the console, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access_resource-based-policies.html">Attach a
280
290
  * permissions policy to a secret</a>.</p>
291
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
281
292
  * <p>
282
293
  * <b>Required permissions: </b>
283
294
  * <code>secretsmanager:PutResourcePolicy</code>.
@@ -301,8 +312,8 @@ export declare class SecretsManager extends SecretsManagerClient {
301
312
  * If you don't include <code>VersionStages</code>, then Secrets Manager automatically
302
313
  * moves the staging label <code>AWSCURRENT</code> to this version. If this operation creates
303
314
  * the first version for the secret, then Secrets Manager
304
- * automatically attaches the staging label <code>AWSCURRENT</code> to it .</p>
305
- * <p>If this operation moves the staging label <code>AWSCURRENT</code> from another version to this
315
+ * automatically attaches the staging label <code>AWSCURRENT</code> to it.
316
+ * If this operation moves the staging label <code>AWSCURRENT</code> from another version to this
306
317
  * version, then Secrets Manager also automatically moves the staging label <code>AWSPREVIOUS</code> to
307
318
  * the version that <code>AWSCURRENT</code> was removed from.</p>
308
319
  * <p>This operation is idempotent. If you call this operation with a <code>ClientRequestToken</code>
@@ -310,6 +321,7 @@ export declare class SecretsManager extends SecretsManagerClient {
310
321
  * same secret data, the operation succeeds but does nothing. However, if the secret data is
311
322
  * different, then the operation fails because you can't modify an existing version; you can
312
323
  * only create new ones.</p>
324
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters except <code>SecretBinary</code> or <code>SecretString</code> because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
313
325
  * <p>
314
326
  * <b>Required permissions: </b>
315
327
  * <code>secretsmanager:PutSecretValue</code>.
@@ -322,6 +334,7 @@ export declare class SecretsManager extends SecretsManagerClient {
322
334
  putSecretValue(args: PutSecretValueCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: PutSecretValueCommandOutput) => void): void;
323
335
  /**
324
336
  * <p>For a secret that is replicated to other Regions, deletes the secret replicas from the Regions you specify.</p>
337
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
325
338
  * <p>
326
339
  * <b>Required permissions: </b>
327
340
  * <code>secretsmanager:RemoveRegionsFromReplication</code>.
@@ -334,6 +347,7 @@ export declare class SecretsManager extends SecretsManagerClient {
334
347
  removeRegionsFromReplication(args: RemoveRegionsFromReplicationCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: RemoveRegionsFromReplicationCommandOutput) => void): void;
335
348
  /**
336
349
  * <p>Replicates the secret to a new Regions. See <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/create-manage-multi-region-secrets.html">Multi-Region secrets</a>.</p>
350
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
337
351
  * <p>
338
352
  * <b>Required permissions: </b>
339
353
  * <code>secretsmanager:ReplicateSecretToRegions</code>.
@@ -347,6 +361,7 @@ export declare class SecretsManager extends SecretsManagerClient {
347
361
  /**
348
362
  * <p>Cancels the scheduled deletion of a secret by removing the <code>DeletedDate</code> time
349
363
  * stamp. You can access a secret again after it has been restored.</p>
364
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
350
365
  * <p>
351
366
  * <b>Required permissions: </b>
352
367
  * <code>secretsmanager:RestoreSecret</code>.
@@ -383,6 +398,7 @@ export declare class SecretsManager extends SecretsManagerClient {
383
398
  * version. If the <code>AWSPENDING</code> staging label is present but not attached to the same
384
399
  * version as <code>AWSCURRENT</code>, then any later invocation of <code>RotateSecret</code>
385
400
  * assumes that a previous rotation request is still in progress and returns an error.</p>
401
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
386
402
  * <p>
387
403
  * <b>Required permissions: </b>
388
404
  * <code>secretsmanager:RotateSecret</code>.
@@ -398,6 +414,7 @@ export declare class SecretsManager extends SecretsManagerClient {
398
414
  /**
399
415
  * <p>Removes the link between the replica secret and the primary secret and promotes the replica to a primary secret in the replica Region.</p>
400
416
  * <p>You must call this operation from the Region in which you want to promote the replica to a primary secret.</p>
417
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
401
418
  * <p>
402
419
  * <b>Required permissions: </b>
403
420
  * <code>secretsmanager:StopReplicationToReplica</code>.
@@ -444,6 +461,7 @@ export declare class SecretsManager extends SecretsManagerClient {
444
461
  * your permissions for this secret, then the operation is blocked and returns an Access Denied
445
462
  * error.</p>
446
463
  * </important>
464
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
447
465
  * <p>
448
466
  * <b>Required permissions: </b>
449
467
  * <code>secretsmanager:TagResource</code>.
@@ -464,6 +482,7 @@ export declare class SecretsManager extends SecretsManagerClient {
464
482
  * permissions for this secret, then the operation is blocked and returns an Access Denied
465
483
  * error.</p>
466
484
  * </important>
485
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
467
486
  * <p>
468
487
  * <b>Required permissions: </b>
469
488
  * <code>secretsmanager:UntagResource</code>.
@@ -485,12 +504,15 @@ export declare class SecretsManager extends SecretsManagerClient {
485
504
  * than once every 10 minutes, you create more versions than Secrets Manager removes, and you will reach
486
505
  * the quota for secret versions.</p>
487
506
  * <p>If you include <code>SecretString</code> or <code>SecretBinary</code> to create a new
488
- * secret version, Secrets Manager automatically attaches the staging label <code>AWSCURRENT</code> to the new
489
- * version. </p>
507
+ * secret version, Secrets Manager automatically moves the staging label <code>AWSCURRENT</code> to the new
508
+ * version. Then it attaches the label <code>AWSPREVIOUS</code>
509
+ * to the version that <code>AWSCURRENT</code> was removed from.</p>
510
+ *
490
511
  * <p>If you call this operation with a <code>ClientRequestToken</code> that matches an existing version's
491
512
  * <code>VersionId</code>, the operation results in an error. You can't modify an existing
492
513
  * version, you can only create a new version. To remove a version, remove all staging labels from it. See
493
514
  * <a>UpdateSecretVersionStage</a>.</p>
515
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters except <code>SecretBinary</code> or <code>SecretString</code> because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
494
516
  * <p>
495
517
  * <b>Required permissions: </b>
496
518
  * <code>secretsmanager:UpdateSecret</code>.
@@ -520,6 +542,7 @@ export declare class SecretsManager extends SecretsManagerClient {
520
542
  * </note>
521
543
  * <p>If this action results in the last label being removed from a version, then the version is
522
544
  * considered to be 'deprecated' and can be deleted by Secrets Manager.</p>
545
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
523
546
  * <p>
524
547
  * <b>Required permissions: </b>
525
548
  * <code>secretsmanager:UpdateSecretVersionStage</code>.
@@ -546,6 +569,7 @@ export declare class SecretsManager extends SecretsManagerClient {
546
569
  * <p>Verifies the policy does not lock out a caller.</p>
547
570
  * </li>
548
571
  * </ul>
572
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
549
573
  * <p>
550
574
  * <b>Required permissions: </b>
551
575
  * <code>secretsmanager:ValidateResourcePolicy</code>.
@@ -19,6 +19,7 @@ export interface CancelRotateSecretCommandOutput extends CancelRotateSecretRespo
19
19
  * <a>UpdateSecretVersionStage</a> to change staging labels.
20
20
  * For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotate-secrets_how.html">How rotation works</a>.</p>
21
21
  * <p>To turn on automatic rotation again, call <a>RotateSecret</a>.</p>
22
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
22
23
  * <p>
23
24
  * <b>Required permissions: </b>
24
25
  * <code>secretsmanager:CancelRotateSecret</code>.
@@ -31,6 +31,7 @@ export interface CreateSecretCommandOutput extends CreateSecretResponse, __Metad
31
31
  * <p>If the secret is in a different Amazon Web Services account from the credentials calling the API, then
32
32
  * you can't use <code>aws/secretsmanager</code> to encrypt the secret, and you must create
33
33
  * and use a customer managed KMS key. </p>
34
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters except <code>SecretBinary</code> or <code>SecretString</code> because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
34
35
  * <p>
35
36
  * <b>Required permissions: </b>
36
37
  * <code>secretsmanager:CreateSecret</code>. If you
@@ -9,6 +9,7 @@ export interface DeleteResourcePolicyCommandOutput extends DeleteResourcePolicyR
9
9
  /**
10
10
  * <p>Deletes the resource-based permission policy attached to the secret. To attach a policy to
11
11
  * a secret, use <a>PutResourcePolicy</a>.</p>
12
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
12
13
  * <p>
13
14
  * <b>Required permissions: </b>
14
15
  * <code>secretsmanager:DeleteResourcePolicy</code>.
@@ -29,6 +29,7 @@ export interface DeleteSecretCommandOutput extends DeleteSecretResponse, __Metad
29
29
  * remove the <code>DeletionDate</code> and cancel the deletion of the secret.</p>
30
30
  * <p>When a secret is scheduled for deletion, you cannot retrieve the secret value.
31
31
  * You must first cancel the deletion with <a>RestoreSecret</a> and then you can retrieve the secret.</p>
32
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
32
33
  * <p>
33
34
  * <b>Required permissions: </b>
34
35
  * <code>secretsmanager:DeleteSecret</code>.
@@ -9,6 +9,7 @@ export interface DescribeSecretCommandOutput extends DescribeSecretResponse, __M
9
9
  /**
10
10
  * <p>Retrieves the details of a secret. It does not include the encrypted secret value. Secrets Manager
11
11
  * only returns fields that have a value in the response. </p>
12
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
12
13
  * <p>
13
14
  * <b>Required permissions: </b>
14
15
  * <code>secretsmanager:DescribeSecret</code>.
@@ -10,6 +10,7 @@ export interface GetRandomPasswordCommandOutput extends GetRandomPasswordRespons
10
10
  * <p>Generates a random password. We recommend that you specify the
11
11
  * maximum length and include every character type that the system you are generating a password
12
12
  * for can support.</p>
13
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
13
14
  * <p>
14
15
  * <b>Required permissions: </b>
15
16
  * <code>secretsmanager:GetRandomPassword</code>.
@@ -11,6 +11,7 @@ export interface GetResourcePolicyCommandOutput extends GetResourcePolicyRespons
11
11
  * secret. For more information about permissions policies attached to a secret, see
12
12
  * <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access_resource-policies.html">Permissions
13
13
  * policies attached to a secret</a>.</p>
14
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
14
15
  * <p>
15
16
  * <b>Required permissions: </b>
16
17
  * <code>secretsmanager:GetResourcePolicy</code>.
@@ -16,6 +16,7 @@ export interface GetSecretValueCommandOutput extends GetSecretValueResponse, __M
16
16
  * <p>To retrieve the previous version of a secret, use <code>VersionStage</code> and specify
17
17
  * AWSPREVIOUS. To revert to the previous version of a secret, call <a href="https://docs.aws.amazon.com/cli/latest/reference/secretsmanager/update-secret-version-stage.html">UpdateSecretVersionStage</a>.</p>
18
18
  *
19
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
19
20
  * <p>
20
21
  * <b>Required permissions: </b>
21
22
  * <code>secretsmanager:GetSecretValue</code>.
@@ -11,6 +11,7 @@ export interface ListSecretVersionIdsCommandOutput extends ListSecretVersionIdsR
11
11
  * of a secret. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/getting-started.html#term_version">
12
12
  * Secrets Manager concepts: Versions</a>.</p>
13
13
  * <p>To list the secrets in the account, use <a>ListSecrets</a>.</p>
14
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
14
15
  * <p>
15
16
  * <b>Required permissions: </b>
16
17
  * <code>secretsmanager:ListSecretVersionIds</code>.
@@ -15,6 +15,7 @@ export interface ListSecretsCommandOutput extends ListSecretsResponse, __Metadat
15
15
  * <p>To get the secret value from <code>SecretString</code> or <code>SecretBinary</code>,
16
16
  * call <a>GetSecretValue</a>.</p>
17
17
  * <p>For information about finding secrets in the console, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/manage_search-secret.html">Find secrets in Secrets Manager</a>.</p>
18
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
18
19
  * <p>
19
20
  * <b>Required permissions: </b>
20
21
  * <code>secretsmanager:ListSecrets</code>.
@@ -12,6 +12,7 @@ export interface PutResourcePolicyCommandOutput extends PutResourcePolicyRespons
12
12
  * </p>
13
13
  * <p>For information about attaching a policy in the console, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access_resource-based-policies.html">Attach a
14
14
  * permissions policy to a secret</a>.</p>
15
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
15
16
  * <p>
16
17
  * <b>Required permissions: </b>
17
18
  * <code>secretsmanager:PutResourcePolicy</code>.
@@ -19,8 +19,8 @@ export interface PutSecretValueCommandOutput extends PutSecretValueResponse, __M
19
19
  * If you don't include <code>VersionStages</code>, then Secrets Manager automatically
20
20
  * moves the staging label <code>AWSCURRENT</code> to this version. If this operation creates
21
21
  * the first version for the secret, then Secrets Manager
22
- * automatically attaches the staging label <code>AWSCURRENT</code> to it .</p>
23
- * <p>If this operation moves the staging label <code>AWSCURRENT</code> from another version to this
22
+ * automatically attaches the staging label <code>AWSCURRENT</code> to it.
23
+ * If this operation moves the staging label <code>AWSCURRENT</code> from another version to this
24
24
  * version, then Secrets Manager also automatically moves the staging label <code>AWSPREVIOUS</code> to
25
25
  * the version that <code>AWSCURRENT</code> was removed from.</p>
26
26
  * <p>This operation is idempotent. If you call this operation with a <code>ClientRequestToken</code>
@@ -28,6 +28,7 @@ export interface PutSecretValueCommandOutput extends PutSecretValueResponse, __M
28
28
  * same secret data, the operation succeeds but does nothing. However, if the secret data is
29
29
  * different, then the operation fails because you can't modify an existing version; you can
30
30
  * only create new ones.</p>
31
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters except <code>SecretBinary</code> or <code>SecretString</code> because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
31
32
  * <p>
32
33
  * <b>Required permissions: </b>
33
34
  * <code>secretsmanager:PutSecretValue</code>.
@@ -8,6 +8,7 @@ export interface RemoveRegionsFromReplicationCommandOutput extends RemoveRegions
8
8
  }
9
9
  /**
10
10
  * <p>For a secret that is replicated to other Regions, deletes the secret replicas from the Regions you specify.</p>
11
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
11
12
  * <p>
12
13
  * <b>Required permissions: </b>
13
14
  * <code>secretsmanager:RemoveRegionsFromReplication</code>.
@@ -8,6 +8,7 @@ export interface ReplicateSecretToRegionsCommandOutput extends ReplicateSecretTo
8
8
  }
9
9
  /**
10
10
  * <p>Replicates the secret to a new Regions. See <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/create-manage-multi-region-secrets.html">Multi-Region secrets</a>.</p>
11
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
11
12
  * <p>
12
13
  * <b>Required permissions: </b>
13
14
  * <code>secretsmanager:ReplicateSecretToRegions</code>.
@@ -9,6 +9,7 @@ export interface RestoreSecretCommandOutput extends RestoreSecretResponse, __Met
9
9
  /**
10
10
  * <p>Cancels the scheduled deletion of a secret by removing the <code>DeletedDate</code> time
11
11
  * stamp. You can access a secret again after it has been restored.</p>
12
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
12
13
  * <p>
13
14
  * <b>Required permissions: </b>
14
15
  * <code>secretsmanager:RestoreSecret</code>.
@@ -32,6 +32,7 @@ export interface RotateSecretCommandOutput extends RotateSecretResponse, __Metad
32
32
  * version. If the <code>AWSPENDING</code> staging label is present but not attached to the same
33
33
  * version as <code>AWSCURRENT</code>, then any later invocation of <code>RotateSecret</code>
34
34
  * assumes that a previous rotation request is still in progress and returns an error.</p>
35
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
35
36
  * <p>
36
37
  * <b>Required permissions: </b>
37
38
  * <code>secretsmanager:RotateSecret</code>.
@@ -9,6 +9,7 @@ export interface StopReplicationToReplicaCommandOutput extends StopReplicationTo
9
9
  /**
10
10
  * <p>Removes the link between the replica secret and the primary secret and promotes the replica to a primary secret in the replica Region.</p>
11
11
  * <p>You must call this operation from the Region in which you want to promote the replica to a primary secret.</p>
12
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
12
13
  * <p>
13
14
  * <b>Required permissions: </b>
14
15
  * <code>secretsmanager:StopReplicationToReplica</code>.
@@ -42,6 +42,7 @@ export interface TagResourceCommandOutput extends __MetadataBearer {
42
42
  * your permissions for this secret, then the operation is blocked and returns an Access Denied
43
43
  * error.</p>
44
44
  * </important>
45
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
45
46
  * <p>
46
47
  * <b>Required permissions: </b>
47
48
  * <code>secretsmanager:TagResource</code>.
@@ -16,6 +16,7 @@ export interface UntagResourceCommandOutput extends __MetadataBearer {
16
16
  * permissions for this secret, then the operation is blocked and returns an Access Denied
17
17
  * error.</p>
18
18
  * </important>
19
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
19
20
  * <p>
20
21
  * <b>Required permissions: </b>
21
22
  * <code>secretsmanager:UntagResource</code>.
@@ -17,12 +17,15 @@ export interface UpdateSecretCommandOutput extends UpdateSecretResponse, __Metad
17
17
  * than once every 10 minutes, you create more versions than Secrets Manager removes, and you will reach
18
18
  * the quota for secret versions.</p>
19
19
  * <p>If you include <code>SecretString</code> or <code>SecretBinary</code> to create a new
20
- * secret version, Secrets Manager automatically attaches the staging label <code>AWSCURRENT</code> to the new
21
- * version. </p>
20
+ * secret version, Secrets Manager automatically moves the staging label <code>AWSCURRENT</code> to the new
21
+ * version. Then it attaches the label <code>AWSPREVIOUS</code>
22
+ * to the version that <code>AWSCURRENT</code> was removed from.</p>
23
+ *
22
24
  * <p>If you call this operation with a <code>ClientRequestToken</code> that matches an existing version's
23
25
  * <code>VersionId</code>, the operation results in an error. You can't modify an existing
24
26
  * version, you can only create a new version. To remove a version, remove all staging labels from it. See
25
27
  * <a>UpdateSecretVersionStage</a>.</p>
28
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters except <code>SecretBinary</code> or <code>SecretString</code> because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
26
29
  * <p>
27
30
  * <b>Required permissions: </b>
28
31
  * <code>secretsmanager:UpdateSecret</code>.
@@ -22,6 +22,7 @@ export interface UpdateSecretVersionStageCommandOutput extends UpdateSecretVersi
22
22
  * </note>
23
23
  * <p>If this action results in the last label being removed from a version, then the version is
24
24
  * considered to be 'deprecated' and can be deleted by Secrets Manager.</p>
25
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
25
26
  * <p>
26
27
  * <b>Required permissions: </b>
27
28
  * <code>secretsmanager:UpdateSecretVersionStage</code>.
@@ -22,6 +22,7 @@ export interface ValidateResourcePolicyCommandOutput extends ValidateResourcePol
22
22
  * <p>Verifies the policy does not lock out a caller.</p>
23
23
  * </li>
24
24
  * </ul>
25
+ * <p>Secrets Manager generates a CloudTrail log entry when you call this action. Do not include sensitive information in request parameters because it might be logged. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html">Logging Secrets Manager events with CloudTrail</a>.</p>
25
26
  * <p>
26
27
  * <b>Required permissions: </b>
27
28
  * <code>secretsmanager:ValidateResourcePolicy</code>.
@@ -631,7 +631,14 @@ export interface DescribeSecretResponse {
631
631
  */
632
632
  ReplicationStatus?: ReplicationStatusType[];
633
633
  }
634
- export declare type FilterNameStringType = "all" | "description" | "name" | "primary-region" | "tag-key" | "tag-value";
634
+ export declare enum FilterNameStringType {
635
+ all = "all",
636
+ description = "description",
637
+ name = "name",
638
+ primary_region = "primary-region",
639
+ tag_key = "tag-key",
640
+ tag_value = "tag-value"
641
+ }
635
642
  /**
636
643
  * <p>Allows you to add filters when you use the search function in Secrets Manager. For more information, see <a href="https://docs.aws.amazon.com/secretsmanager/latest/userguide/manage_search-secret.html">Find secrets in Secrets Manager</a>.</p>
637
644
  */
@@ -168,13 +168,14 @@ export interface DescribeSecretResponse {
168
168
  PrimaryRegion?: string;
169
169
  ReplicationStatus?: ReplicationStatusType[];
170
170
  }
171
- export declare type FilterNameStringType =
172
- | "all"
173
- | "description"
174
- | "name"
175
- | "primary-region"
176
- | "tag-key"
177
- | "tag-value";
171
+ export declare enum FilterNameStringType {
172
+ all = "all",
173
+ description = "description",
174
+ name = "name",
175
+ primary_region = "primary-region",
176
+ tag_key = "tag-key",
177
+ tag_value = "tag-value",
178
+ }
178
179
  export interface Filter {
179
180
  Key?: FilterNameStringType | string;
180
181
  Values?: string[];
package/package.json CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "name": "@aws-sdk/client-secrets-manager",
3
3
  "description": "AWS SDK for JavaScript Secrets Manager Client for Node.js, Browser and React Native",
4
- "version": "3.180.0",
4
+ "version": "3.181.0",
5
5
  "scripts": {
6
6
  "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
7
7
  "build:cjs": "tsc -p tsconfig.cjs.json",
@@ -19,9 +19,9 @@
19
19
  "dependencies": {
20
20
  "@aws-crypto/sha256-browser": "2.0.0",
21
21
  "@aws-crypto/sha256-js": "2.0.0",
22
- "@aws-sdk/client-sts": "3.180.0",
22
+ "@aws-sdk/client-sts": "3.181.0",
23
23
  "@aws-sdk/config-resolver": "3.178.0",
24
- "@aws-sdk/credential-provider-node": "3.180.0",
24
+ "@aws-sdk/credential-provider-node": "3.181.0",
25
25
  "@aws-sdk/fetch-http-handler": "3.178.0",
26
26
  "@aws-sdk/hash-node": "3.178.0",
27
27
  "@aws-sdk/invalid-dependency": "3.178.0",